Skip to content
/ Quick-Update-Headers Public

This Burp extension lets you quickly update the headers of a request inside a Repeater or Intruder tab to newer headers from the same host using the context menu

License

Apache-2.0 license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

cyllective/Quick-Update-Headers

BranchesTags

Repository files navigation

Quick Update Headers Burp Extension

This Burp extension lets you quickly update the headers of a request inside a Repeater or Intruder tab to newer headers from the same host using the context menu.

The main scenario for this is replacing the cookies inside an old Repeater tab with the latest cookies. The replacement headers will be selected based on the newest request with the same "Host" header value as the selected request.

Headers that should be available in the context menu for replacement can be specified in the Burp settings under "Settings/Extensions/Quick Update Headers".

Build

make
# or 
docker run --rm -u $(id -u):$(id -g) -v $(pwd):/home/gradle gradle:8.7.0-jdk17-alpine gradle build
mv ./build/libs/*.jar .

Bambda

This is just a quick and dirty way of doing it. The extension is nicer ;)

String[] headersToReplace = {"Authorization","Cookie"};

HttpRequest selectedRequest= requestResponse.request();
List<HttpHeader> currentHeaders = selectedRequest.headers();
if (currentHeaders == null || currentHeaders.isEmpty()) {
    return;
}

String hostValue = selectedRequest.headerValue("Host");
if (hostValue == null) {
    return;
}

// It is faster (in big projects) to go through the whole history
// rather than to filter the history first by host header
List<ProxyHttpRequestResponse> history = api.proxy().history();
if (history.isEmpty()) {
    return;
}

ListIterator<ProxyHttpRequestResponse> historyIterator =
        history.listIterator(history.size());

HttpRequest newRequest = selectedRequest;

while (historyIterator.hasPrevious()) {
    // Go through the list in reverse as we want the newest entries first
    ProxyHttpRequestResponse historyEntry = historyIterator.previous();

    HttpHeader hostHeader = historyEntry.request().header("Host");
    if (hostHeader == null) {
        continue;
    }

    if (hostHeader.value().equals(hostValue)) {
        // We are on the same host
        for (String headerToReplace: headersToReplace) {
	        HttpHeader headerToInsert = historyEntry.request().header(headerToReplace);
        	if (headerToInsert != null) {
	            // Update the request with the newest header
                newRequest = newRequest.withHeader(headerToInsert);
	        }
	     }
        
        break; // Only update with the first (most recent) match
    }
}

// Apply new request
httpEditor.requestPane().set(newRequest);

About

This Burp extension lets you quickly update the headers of a request inside a Repeater or Intruder tab to newer headers from the same host using the context menu

Topics

burpsuite burp-extensions

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Languages